Merge checksecurity from Debian unstable for noble

A merge of checksecurity appears to be available presently.
Upstream: tbd
Debian: 2.0.16+nmu4
Ubuntu: 2.0.16+nmu3ubuntu1

If it turns out this needs a sync rather than a merge, please change the tag 'needs-merge' to 'needs-sync', and (optionally) update the title as desired.

### New Debian Changes ###

checksecurity (2.0.16+nmu4) unstable; urgency=medium

  * Non-maintainer upload.
  * Convert to source format 3.0. (Closes: #1007335)

 -- Bastian Germann <email address hidden> Fri, 13 Oct 2023 19:08:08 +0000

checksecurity (2.0.16+nmu3) unstable; urgency=medium

  * Non-maintainer upload.
  * Fix 'missing required debian/rules targets build-arch and/or build-
    indep': Add targets to debian/rules.
    (Closes: #999082)
  * Fix 'Removal of obsolete debhelper compat 5 and 6 in bookworm':
    Bump to 7 in debian/{compat,control}.
    (Closes: #965448)
  * Fix some grave packaging errors:
    - move debhelper from Build-Depends-Indep to Build-Depends
    - remove temporary files debian/postrm.debhelper and debian/substvars from
      source package

 -- gregor herrmann <email address hidden> Sun, 26 Dec 2021 01:56:10 +0100

checksecurity (2.0.16+nmu2) unstable; urgency=medium

  * Non maintainer upload by the Reproducible Builds team.
  * No source change upload to rebuild on buildd with .buildinfo files.

 -- Holger Levsen <email address hidden> Fri, 01 Jan 2021 19:17:53 +0100

checksecurity (2.0.16+nmu1) unstable; urgency=medium

  * Non-maintainer upload.
  * Use 'find -perm /x' instead of 'find -perm +x'. Closes: #731944

 -- Andreas Metzler <email address hidden> Tue, 29 Dec 2015 14:06:01 +0100

checksecurity (2.0.16) unstable; urgency=medium

  * plugins/check-setuid: Prevent error from find by putting
    -ignore_readdir_race as first option (Closes: 714152)
  * plugins/check-iptables-logs, man/check-iptables-logs.8: Add new plugin to
    check for iptables logs and provide information of attacked ports,
    blacklisted hosts (using fail2ban), etc.
  * etc/global-checksecurity.conf: Add information for the new plugin, this is
    disabled by default (as systems might not have iptables configured and,
    even if enabled, there might not be a log target)
  * man/{check-diskfree.8,check-passwd.8,check-setuid.8}: Clarify that these
    plugins are written to be run by checksecurity. Some of the plugins might
    not work if missing some environment variables (which are defined by
    checksecurity)
  * man/checksecurity.8: Add a reference to the new plugin check-iptables-logs
  * debian/control: Improve the package description with the recommendations
    made by Justin B Rye (Closes: #688070)
  * debian/control: Add debsecan to the Recommends, this provides notification
    of vulnerabilities in the system and security updates (Closes: #253097)
  * etc/check-setuid.conf: Exclude more filesystems for the setuid checks as
    are system based filesystems
  * debian/po/tr.po: Add Turkish translation provided by Mert Dirik
    (Closes: #759874)

 -- Javier Fernández-Sanguino Peña <email address hidden> Sat, 21 Feb 2015 15:35:45 +0100

checksecurity (2.0.15) unstable; urgency=medium

  * Fix bug in the CS_NFSAFS definition in etc/check-setuid.conf that prevents
    the script from matching any filesystem. This bug was, actually, making the
    script not do anything in the default configuration. (Closes: 724687)

    Thanks go to Alessandro Vesely for spotting this bug and providing a fix.

  * debian/control: Adjust the maintainer's name

 -- Javier Fernández-Sanguino Peña <email address hidden> Sat, 28 Sep 2013 23:31:59 +0200

checksecurity (2.0.14) unstable; urgency=low

  * plugins/check-setuid:
       - Integrate changes to from Ubuntu to make use of ionice when calling
         find. (Closes: #578640)
       - Use the -ignore_readdir_race option when calling find to avoid
         error messages when encountering stale files (Closes: #583809)
  * etc/global-checksecurity.conf: Adjust comments associated to
    CHECKSECURITY_EMAIL to point to bsd-mailx instead of mailx and
    remove reference to cron. (Closes: #541636)
  * debian/control: Depend on util-linux (>= 2.15~rc1-1) which provides
    ionice.
  * debian/compat: Change from 4 to 5
  * debian/rules: Adjust calls to dh_clean

 -- Javier Fernandez-Sanguino Pen~a <email address hidden> Wed, 27 Oct 2010 23:44:51 +0200

checksecurity (2.0.13ubuntu2) lucid; urgency=low

  [ Matt Zimmerman ]
  * plugins/check-setuid: Use ionice to set idle I/O scheduling priority for
    find(1) across the whole filesystem.

  [ James Westby ]
  * plugins/check-setuid: Use the -t option to ionice so that failures to set

### Old Ubuntu Delta ###

checksecurity (2.0.16+nmu3ubuntu1) jammy; urgency=medium

  * Merge with Debian unstable. Remaining changes:
    - Downgrade all Recommends to Suggests, except logcheck (it is in main)
  * Dropped changes:
    - Remove fcron from Depends, it is not in the archive. [no more needed]

 -- Christian Ehrhardt <email address hidden> Thu, 24 Mar 2022 14:21:33 +0100